3 Days left to get an iPad Pro, Surface Pro, or $400 Off with Online Training!

Webcasts

To attend this webcast, login to your SANS Account or create your Account.

Struts-Shock: Current Attacks against Struts2 and How to Defend Against Them

  • Thursday, April 6th, 2017 at 11:00 AM EST (15:00:00 UTC)
  • Johannes Ullrich and Jonathan Mandell
This webcast has been archived. You can view the webcast presentation and download the slides by logging into your SANS Portal Account or creating an Account. Click the Register Now button after you have logged in to view the Webcast.

Sponsor

  • Veracode

You can now attend the webcast using your mobile device!

Overview

The critical vulnerability discovered in the Apache Struts 2 library in March 2017 demonstrates the widespread risk that exists across many applications and websites. If exploited, these vulnerabilities can wreak havoc on the data and intellectual property that businesses work so hard to protect. Join Johannes Ullrich of the SANS Institute and Jonathan Mandell of Veracode as they provide:

  • An overview and background of the Apache Struts 2 vulnerability
  • Updates on how the vulnerability has been exploited to date
  • Strategies businesses can take to continue developing applications using open source components- without the consequences of the associated risks

Speaker Bios

Johannes Ullrich

Johannes Ullrich, dean of research at the SANS Technology Institute, is currently responsible for the SANS Internet Storm Center (ISC) and the GIAC Gold program. His research interests include IPv6, network traffic analysis and secure software development. In 2004, Network World named Johannes one of the 50 most powerful people in the networking industry, and SC Magazine named him one of the top five influential IT security thinkers for 2005. Prior to working for SANS, Johannes served as a lead support engineer for a web development company and as a research physicist.


Jonathan Mandell

Jonathan Mandell has led product management initiatives over the past decade creating SaaS solutions for both SMB and enterprise customers. He is currently Veracode’s product manager for Software Composition Analysis and mobile application security.

Need Help? Visit our FAQ page or email webcast-support@sans.org.

Not able to attend a SANS webcast? All Webcasts are archived so you may view and listen at a time convenient to your schedule. View our webcast archive and access webcast recordings/PDF slides.